Cloud Security Engineer (AWS)

Piper Companies is seeking a Cloud Security Engineer (AWS) for a leading cloud‑focused technology organization. The Cloud Security Engineer will focus on strengthening and maintaining the security posture of large‑scale AWS environments through rigorous configuration assessment, compliance validation, automation, and continuous monitoring. This engineer will evaluate cloud resources against STIGs, CIS benchmarks, and NIST 800‑53 controls, identify and document security risks, and partner with cross‑functional teams to ensure secure cloud operations. This opportunity is an ongoing contract position designed for long-term collaboration, looking to sit hybrid 2 days a week in RTP, NC. This individual must have a public trust security clearance.

Responsibilities for the Cloud Security Engineer (AWS) include:

·      Assess and validate AWS resource configurations against established security best practices.

·      Evaluate adherence to STIGs and CIS benchmarks, ensuring corrective actions are documented and tracked.

·      Continuously monitor and maintain compliance with NIST 800‑53 requirements.

·      Create and manage remediation tickets for security findings, misconfigurations, and risk items.

·      Lead routine discussions with stakeholders regarding vulnerabilities, risks, and recommended improvements.

·      Collaborate with DevOps, IT, and Compliance teams to support secure architecture and operations.

·      Automate security workflows using AWS‑native tools and scripting languages.

·      Maintain detailed documentation for security processes, configurations, and policies.

·      Stay current with AWS security advancements, compliance standards, and emerging threat landscapes.

Qualifications for the Cloud Security Engineer (AWS) include:

·      Extensive hands‑on experience with AWS security services and cloud security architecture.

·      Strong proficiency with core AWS tools including IAM, KMS, CloudTrail, Security Hub, GuardDuty, and WAF.

·      Deep understanding of secure cloud design principles for AWS workloads.

·      Expertise in AWS networking and security controls (VPC, security groups, NACLs, VPNs, firewalls, etc.).

·      Strong understanding of STIGs, CIS benchmarks, and NIST 800‑53 frameworks.

·      Experience with scripting and Infrastructure‑as‑Code (Python, CloudFormation, Terraform, etc.).

·      Excellent analytical skills with strong communication and collaboration capabilities.

·      Preferred certifications: AWS Security Specialty, CISSP, or equivalent.

Compensation for the Cloud Security Engineer (AWS) includes:

·      Salary range: $100,000 - $120,000

·      Comprehensive benefits package including Medical, Dental, Vision, 401k, PTO, holidays, and sick leave as required by law.

Keywords: cloud security engineer, AWS security, AWS cloud, cloud architecture, AWS IAM, AWS KMS, AWS cloudtrail, AWS security hub, AWS guardduty, AWS networking, NACLs, VPNs, Firewalls, STIGs, CIS benchmarks, NIST 800-53, cloud compliance controls, security hardening, governance, risk, compliance, GRC, infrastructure as code, IaC, terraform, python scripting, automation, SIEM, Wiz, tenable, configuration assessment, threat detection, incident prevention

#LI-BH1

#HYBRID

This job is open for applications on 2/13/2026 and will remain open for at least 30 days from the posting date